Lucene search

[email protected]NVD:CVE-2016-1459

HistoryJul 17, 2016 - 10:59 p.m.

CVE-2016-1459

2016-07-1722:59:03

CWE-399

[email protected]

web.nvd.nist.gov

CVSS2

4.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:S/C:N/I:N/A:C

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

5.1

Confidence

High

EPSS

0.002

Percentile

60.0%

JSON

Cisco IOS 12.4 and 15.0 through 15.5 and IOS XE 3.13 through 3.17 allow remote authenticated users to cause a denial of service (device reload) via crafted attributes in a BGP message, aka Bug ID CSCuz21061.

Affected configurations

Nvd

Node

ciscoiosMatch12.4\(4\)xc7

ciscoiosMatch12.4\(15\)t17

ciscoiosMatch12.4\(19a\)

ciscoiosMatch12.4\(22\)yb2

ciscoiosMatch12.4\(24\)gc4

ciscoiosMatch12.4\(24\)gc5

ciscoiosMatch15.0\(1\)ex

ciscoiosMatch15.0\(1\)m

ciscoiosMatch15.0\(1\)m9

ciscoiosMatch15.0\(1\)m10

ciscoiosMatch15.0\(1\)s

ciscoiosMatch15.0\(1\)sy

ciscoiosMatch15.0\(2\)sg

ciscoiosMatch15.1\(3\)t4

ciscoiosMatch15.1\(4\)gc2

ciscoiosMatch15.1\(4\)m10

ciscoiosMatch15.2\(3\)t4

ciscoiosMatch15.2\(4\)gc3

ciscoiosMatch15.2\(4\)m10

ciscoiosMatch15.3\(2\)t4

ciscoiosMatch15.3\(3\)m

ciscoiosMatch15.3\(3\)m7

ciscoiosMatch15.4\(2\)t4

ciscoiosMatch15.4\(3\)m5

ciscoiosMatch15.5\(2\)t3

ciscoiosMatch15.5\(3\)m3

ciscoios_xeMatch3.13.2s

ciscoios_xeMatch3.13.3s

ciscoios_xeMatch3.13.4s

ciscoios_xeMatch3.13.5s

ciscoios_xeMatch3.14.0s

ciscoios_xeMatch3.14.1s

ciscoios_xeMatch3.14.2s

ciscoios_xeMatch3.14.3s

ciscoios_xeMatch3.14.4s

ciscoios_xeMatch3.15.1cs

ciscoios_xeMatch3.15.2s

ciscoios_xeMatch3.15.3s

ciscoios_xeMatch3.16.0cs

ciscoios_xeMatch3.16.1as

ciscoios_xeMatch3.16.2s

ciscoios_xeMatch3.16.3s

ciscoios_xeMatch3.17.0s

ciscoios_xeMatch3.17.1s

ciscoios_xeMatch3.17.2s

VendorProductVersionCPE
ciscoios12.4(4)xc7cpe:2.3:o:cisco:ios:12.4\(4\)xc7:*:*:*:*:*:*:*
ciscoios12.4(15)t17cpe:2.3:o:cisco:ios:12.4\(15\)t17:*:*:*:*:*:*:*
ciscoios12.4(19a)cpe:2.3:o:cisco:ios:12.4\(19a\):*:*:*:*:*:*:*
ciscoios12.4(22)yb2cpe:2.3:o:cisco:ios:12.4\(22\)yb2:*:*:*:*:*:*:*
ciscoios12.4(24)gc4cpe:2.3:o:cisco:ios:12.4\(24\)gc4:*:*:*:*:*:*:*
ciscoios12.4(24)gc5cpe:2.3:o:cisco:ios:12.4\(24\)gc5:*:*:*:*:*:*:*
ciscoios15.0(1)excpe:2.3:o:cisco:ios:15.0\(1\)ex:*:*:*:*:*:*:*
ciscoios15.0(1)mcpe:2.3:o:cisco:ios:15.0\(1\)m:*:*:*:*:*:*:*
ciscoios15.0(1)m9cpe:2.3:o:cisco:ios:15.0\(1\)m9:*:*:*:*:*:*:*
ciscoios15.0(1)m10cpe:2.3:o:cisco:ios:15.0\(1\)m10:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios	12.4(4)xc7	cpe:2.3:o:cisco:ios:12.4\(4\)xc7:::::::*
cisco	ios	12.4(15)t17	cpe:2.3:o:cisco:ios:12.4\(15\)t17:::::::*
cisco	ios	12.4(19a)	cpe:2.3:o:cisco:ios:12.4\(19a\):::::::*
cisco	ios	12.4(22)yb2	cpe:2.3:o:cisco:ios:12.4\(22\)yb2:::::::*
cisco	ios	12.4(24)gc4	cpe:2.3:o:cisco:ios:12.4\(24\)gc4:::::::*
cisco	ios	12.4(24)gc5	cpe:2.3:o:cisco:ios:12.4\(24\)gc5:::::::*
cisco	ios	15.0(1)ex	cpe:2.3:o:cisco:ios:15.0\(1\)ex:::::::*
cisco	ios	15.0(1)m	cpe:2.3:o:cisco:ios:15.0\(1\)m:::::::*
cisco	ios	15.0(1)m9	cpe:2.3:o:cisco:ios:15.0\(1\)m9:::::::*
cisco	ios	15.0(1)m10	cpe:2.3:o:cisco:ios:15.0\(1\)m10:::::::*

Rows per page:

1-10 of 451

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160715-bgp

www.securityfocus.com/bid/91800

www.securitytracker.com/id/1036321

CVSS2

4.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:S/C:N/I:N/A:C

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

5.1

Confidence

High

EPSS

0.002

Percentile

60.0%

JSON

Related for NVD:CVE-2016-1459

cve1 openvas2 cisco1 nessus2 cvelist1 prion1